Dear all,
having a more subtle differentiation, clarifying that service providers
can be regarded as first parties when acting as such recognizes the
business processes. We support such approach, as this would not undermine
the 3rd party approach.
Kind regards,
On 01/03/12 06:39, "Roy T. Fielding" <fielding@gbiv.com> wrote:
>On Feb 29, 2012, at 7:53 PM, Justin Brookman wrote:
>
>> There is already an entire section of the compliance spec on this exact
>>issue --- 4.4.2 Exception for Outsourcing. Is there any reason that
>>exception does not address everyone's concerns, rather than resorting to
>>the fiction that service providers are the same entity as the first
>>party (despite an earlier definition of party that says otherwise)?
>
>As I said, that is sufficient IF it is applied to this issue.
>It doesn't do any good to have a definition of a third party
>acting as a first party if the other requirements ignore that
>definition and paint all third parties as the same.
>
>....Roy
>
>